====================================================================

                             CERT-Renater

                 Note d'Information No. 2018/VULN024
_____________________________________________________________________

DATE                : 18/01/2018

HARDWARE PLATFORM(S): Cisco Email Security Appliance (ESA),
                      Content Security Management Appliance (SMA).

OPERATING SYSTEM(S): Cisco NX-OS Software versions prior to 9.8.0-015,
                              9.8.0-092, 10.0.1-087, 11.0.0-015.

=====================================================================
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180117-esasma
_____________________________________________________________________

Cisco Security Advisory: Cisco Email Security and Content Security
Management Appliance Privilege Escalation Vulnerability


Advisory ID: cisco-sa-20180117-esasma

Revision: 1.0

For Public Release: 2018 January 17 16:00 GMT

Last Updated: 2018 January 17 16:00 GMT

CVE ID(s): CVE-2018-0095

CVSS Score v(3): 7.8 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

+---------------------------------------------------------------------

Summary
=======
A vulnerability in the administrative shell of the Cisco Email Security
Appliance (ESA) and Content Security Management Appliance (SMA) could
allow an authenticated, local attacker to escalate their privilege
level and gain root access. The attacker has to have a valid user
credential with at least a privilege level of a guest user.

The vulnerability is due to an incorrect networking configuration at
the administrative shell CLI. An attacker could exploit this
vulnerability by authenticating to the targeted device and issuing a
set of crafted, malicious commands at the administrative shell. An
exploit could allow the attacker to gain root access on the device.

Cisco has released software updates that address this vulnerability.
There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180117-esasma
["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180117-esasma"]


==========================================================
+ CERT-RENATER          | tel : 01-53-94-20-44           +
+ 23 - 25 Rue Daviel    | fax : 01-53-94-20-41           +
+ 75013 Paris           | email: cert@support.renater.fr +
==========================================================